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[PDF] Decentralized User Authentication in a Global File System 
File Format: PDF/Adobe Acrobat - View as HTML 

the file server sends a request to its local authentication server to ... both local and 
global identities. GSI authenticates the user's global ... 
www.scs.cs.nyu.edu/~dm/papers/kaminsky:sfsgroups.pdf - Similar pages 

Single Sign-On Basics 

"Configuring the Global User Inactivity Timeout" in Chapter 2, ... Formerly, local 
authentication meant using a lookup table in the Single Sign-On schema, ... 
download-east.oracle.com/docs/cd/A97329_01/manage.902/a961 1 5/concepts.htm - 
31k - Cached - Similar pages 

ACL Authentication of Incoming rsh and rep Reouests 

To create an entry for the remote user in a local authentication database so that 
remote ... issue the ip rcmd rsh-enable global configuration command. ... 
www.cisco.com/univercd/cc/td/doc/product/ 

software/ios122/122newft/122t/122t8/ftauth.htm - 24k - Cached - Similar pages 

Remote Site IEEE 802.1X Local Authentication Service [Cisco IPS ... 

Use the show running-config command in global configuration mode to verify the 

current configuration for local authentication service. ... 

www.cisco.com/en/US/products/sw/iosswrel/ 

ps5207/productsjeature_guide09186a008021 14d8.html - 175k - 
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Global Internet with Mobile IP. Wireless access network. Local handoff. Gateway ... 
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ieeexplore.ieee.org/iel5/10826/34121/01625776.pdf- Similar pages 

[PDF) User Authentication in Multidatabase Systems 
File Format: PDF/Adobe Acrobat 

The authentication pro\ cess is strictly separated into global authentication for. 
global users and local authentication for local users. ... 
ieeexplore.ieee.org/iel4/571 8/15304/00707414.pdf?arnumber=707414 - 
Si mil ar pages 
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AUTHENTICATION: PROGRESS IN THE UK (Beyond the Beginning: The ... 
Beyond the Beginning: The Global Digital Library ... It will be available generally for 
other services and for local use from January 1998. ... 
www.ukoln.ac.uk/services/papers/bl/blri078/content/repor-31.htm - 14k - 
Cached - Similar pages 

Trusted domain Authentication issue. 

This question has been answered, Question: Trusted domain Authentication issue. 
... Are the users in Global, Domain local or Universal groups? ... 
support.citrix.com/forums/thread.jspa?forumlD=75& 
threadlD=77639&messagelD=495333& - 51 k - Cach ed - Similar pages 

Global Grid Forum 

Jim Basney (NCSA) - MyProxy Integration with local Authentication ... GGFSM, 
Global GridForumSM, Grid ForumSM, and the GGF Logo are trademarks of GGF. 
www.gridforum.org/GGF15/ggf_events_schedule_IVIultiSite.htm - 17k - 
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The Library can handle local and global filters - local filters are ... filter before and 
after filter are generalized authentication filters that do not ... 

www.w3.org/Library/User/Using/Filters.html - 6k - Cached - Similar pages 

heise Netze - draft-mun-mobileip-bwa-aaa-OO: Local Authentication ... 
Local Authentication Scheme Based on AAA Architecture in IEEE 802. 16e BWA ... 
fast and secure global roaming service across multiple service domains. ... 
www.heise.de/netze/rfc/drafts/draft-mun-mobileip-bwa-aaa-00.shtml - 52k - 
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Adobe - TechNote : JRun 3.1: How to use Single Signon 
JRun version 3.1 features an integrated authentication mechanism, called single 
signon. ... Turn on the jrunauth service in the global or local. properties: ... 
www.adobe.com/cfusion/knowledgebase/index.cfm?id=tn_17983 - 29k - 
Cached - Similar pages 

[PDF] Bavesian Adaptation for User-Dependent Multimodal Biometric ... 
File Format: PDF/Adobe Acrobat - View as HTML 

This can be partially overcome by considering both global and local ... set sizes in 
user-dependent multimodal biometric authentication is presented. ... 
flerrez.ii.uam.es/docs/2005__PR_BayesUserDepFusion_Fierrez.pdf - Similar pages 

[PDF] Efficient Log Authentication for Forensic Computing 
File Format: PDF/Adobe Acrobat - View as HTML 

Aggregation of the logs and authentication information, through the tree ... global 
root hash and the hashes in Entry 1 , another local merkle ... 
www.itoc.usma.edu/Workshop/2005/Papers/2/IAW05%20Thurs%20Session%20IV% 
20Talks/IAW2005.pdf - Similar pages 

Internet Law & Policy Forum: Bringing law, policy, business and ... 
Steering Committee for OECD/BIAC Workshop on Electronic Authentication; April 
23, 1999 ... Conference: Jurisdiction II: Global Networks / Local Rules ... 
www.ilpf.org/groups/ - 10k - Cached - S imilar pages 

AUTHENTICATION: PROGRESS IN THE UK (Bevond the Beginning: The ... 
Beyond the Beginning: The Global Digital Library ... There is flexibility for creating 
group ids, and local delegation of authority for granting access, ... 
www.cni.org/regconfs/1997/ukoln-content/repor-31 .html - 28k - 
Cached - Similar pages 
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fZope3-dev] Local authentication 

[Zope3-dev] Local authentication. Jim Fulton jim at zope.com ... Heck, you could 
just use the global registry, depending on your needs. > 2. ... 
mail.zope.org/pipermail/2ope3-dev/2005-February/013190.html - 6k - 
Cached - Similar pages 

ECS EPrints Sen/ice - Local and Global Models for Articulated ... 
Local and global modelling strategies are employed in an iterative process, ... 
Audio- and Video-Based Biometric Person Authentication, 734-742, 2003. ... 
eprints.ecs.soton.ac.uk/13222/ - 76k - Cached - Similar pages 

[PDF] Design and Deployment of a National-Scale Authentication ... 
File Format: PDF/Adobe Acrobat - View as HTML 

While the authentication protocol verifies the. global identity of the parties involved, 
this name, must be converted to a local subject name (e.g., ... 
www.cs.ucy.ac.cy/crossgrid/cygriddl/gsi-authentication.pdf - Similar pages 

10 Administering Authentication 

10.1 .3.2 Advantages of Global Authentication and Global Authorization ... 
CURRENTJJSER database links connect as a global user. A local user can 
connect as ... 

download-west.oracle.com/docs/cd/B19306_01/network.102/b14266/admnauth.htm- 
33k - Cached - Similar pages 

Handle System 5.3: Handle System Overview 

Any existing local namespace can join the global handle namespace by obtaining ... 
The Handle System provides the authentication and data integrity services ... 
www.handle.net/hs_manual/server_manuaL2.html - 20k - Cached - Similar pages 

Exploring Windows 2003 Security: Active Directory and ... 
Enabling this setting does not alter the first authentication attempt by a user. The 
local domain controller still needs to contact the global catalog to ... 
www.serverwatch.com/tutorials/article.php/3072151 - 46k - Cached - Similar pages 

About the NOC 

A local authentication framework. A global authentication framework. A 
interconnect policy framework to base other systems on. ... 
www.eduroam.edu.au/slides/NSWRNO/Joining%20EduRoam_files/frame.htm - 2k - 
Cached - Similar pages 

O'Reilly - Safari Books Online - 1587050242 - Cisco® Field Manual ... 
(global) kerberos local-realm realm. The router is located in the Kerberos realm 
(an ... (global) aaa accounting send stop-request authentication failure ... 
safari.oreilly .com/1 587050242/ch1 3lev1 sec2 - Simil a r pages 

Manpaoe of ISCSI.CONF 

Specify the CHAP authentication user name that should be received from ... If there 
is a conflict of entries between global and local, then local ones will ... 
Iinux-iscsi.sourceforge.net/iscsi.conf.5.html - 22k - Ca ched - Similar pages 

Template for administration documentation of resources 

To understand the difference between global and local filters, consider the case of 
authentication. Authentication is handled by a global filter, ... 

www.w3.org/Jigsaw/User/Reference/w3c.www.protocol.http.HttpManager.html - 10k - 
Cached - Sim ilar pa ges 



Sponsored Links 

Google Maps for mobile 
Maps, listings & satellite imagery. 
Download to your phone for free. 
www.google.com/gmm 

Satellite Maps of Earth 

Earth Satellite Maps - Your House 

New York, San Francisco, or Maui 

earth.satellite.map.googlepages.com 



http://www.google.com/search?q=global+and+local4-authentication& 3/19/2007 



Results (page 1): global and local authentication 



Page 1 of 5 



!# PORTAL 



USPTO 



Subscribe (Full Service) Reflister (Limited Service, Free) Login 

Search: ® The ACM Digital Library O The Guide 
|global and local authentication 



Terms used global and local authentication 



Sort 



results |relevance Q ^ Save results to a Binder 

by ' ™ search Tips 

respite E^?i^^LB □ Open results in a new 



■ Feedback Report a problem Satisfaction 
survey 

Found 33,063 of 198,617 

Try an Advanced Search 

Try this search in The ACM Guide 



Results 1 - 20 of 200 

Best 200 shown 



window 

Result page: 12345678910 



next 

Relevance scale 



Decentralized user authentication in a global file system 

Michael Kaminsky, George Savvides, David Mazieres, M. Frans Kaashoek 

October 2003 ACM SIGOPS Operating Systems Review , Proceedings of the nineteenth 

ACM symposium on Operating systems principles SOSP '03, Volume 37 Issue 

5 

Publisher: ACM Press 

Full text available: fiflpp'f( 144.43 KB) Additional Information: full citation , abstract, references, citin gs , index terms 



The challenge for user authentication in a global file system is allowing people to grant 
access to specific users and groups in remote administrative domains, without assuming 
any kind of pre-existing administrative relationship. The traditional approach to user 
authentication across administrative domains is for users to prove their identities through 
a chain of certificates. Certificates allow for general forms of delegation, but they often 
require more infrastructure than is necessary to sup ... 



Keywords: ACL, SFS, authentication, authorization, credentials, file system, groups, 
users 
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Access control in federated systems 

Sabrina De Capitani di Vimercati, Pierangeia Samarati 

September 1996 Proceedings of the 1996 workshop on New security paradigms NSPW 
'96 

Publisher: ACM Press 

Full text available: #j| pdf(1.45 MB) Additional Information: full citation , references , citings 



Sensors and networking: TinySeRSync: secure and resilient time synchronization in 
wireless sensor networks 
Kun Sun, Peng Ning, Cliff Wang 

October 2006 Proceedings of the 13th ACM conference on Computer and 
communications security CCS '06 

Publisher: ACM Press 

Full text available: ^jf | odf(410.62 KB! Additional Information: full citation , abstract , references , index terms 



Accurate and synchronized time is crucial in many sensor network applications due to the 
need for consistent distributed sensing and coordination. In hostile environments where 
an adversary may attack the networks and/or the applications through external or 
compromised nodes, time synchronization becomes an attractive target due to its 
importance. This paper describes the design, implementation, and evaluation of 
TinySeRSync, a secure and resilient time synchronization subsystem for wireless sen ... 

Keywords: security, sensor networks, time synchronization 
Article abstracts with full text online: Globus security model for arid environment 
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Nitin V. Kanaskar, Umit Topaloglu, Coskun Bayrak 

November 2005 ACM SIGSOFT Software Engineering Notes, Volume 30 Issue 6 
Publisher: ACM Press 

Full text available: ^pjpdf(372.40 KB) Additional Information: full citation, abstract , references , index terms 

Grid technology is increasingly being looked upon as a natural extension of the internet for 
engaging in complex data processing tasks over resources which are distributed across 
the world. Architects and developers employing grid systems must take into consideration 
security implications. Dynamic generation of virtual organizations leads to a synergistic 
picture which has to address security requirements never encountered before. Globus 
toolkit has devised a framework for making secure use of g ... 

LEAP&plus;: Efficient security mechanisms for large-scale distributed sensor networks [ 
Sencun Zhu, Sanjeev Setia, Sushil Jajodia 

November 2006 ACM Transactions on Sensor Networks (TOSN), Volume 2 issue 4 
Publisher: ACM Press 

Full text available: ^pfjodff 206.32 KB) Additional Information: full citation , abstract , references, index terms 

We describe LEAP&plus; (Localized Encryption and Authentication Protocol), a key 
management protocol for sensor networks that is designed to support in-network 
processing, while at the same time restricting the security impact of a node compromise 
to the immediate network neighborhood of the compromised node. The design of the 
protocol is motivated by the observation that different types of messages exchanged 
between sensor nodes have different security requirements, and that a single keying 
mec ... 

Keywords: In-network processing, key erasure, key management, pairwise key, sensor 
networks 



A security architecture for computational grids 
Ian Foster, Carl Kesselman, Gene Tsudik, Steven Tuecke 
November 1998 Proceedings of the 5th ACM conference on Computer and 
communications security CCS '98 

Publisher: ACM Press 

Full text available: ^jpdfn.23 MB) Additional Information: full citation , references , citings , index terms 



A semantics for a logic of authentication (extended abstract) 
Martin Abadi, Mark R. Tuttle 

July 1991 Proceedings of the tenth annual ACM symposium on Principles of 
distributed computing PODC '91 

Publisher: ACM Press 

Full text available: 4|| pdf(1.63 MB) Additional Information: full citation , references, citings, index terms 



SHARP: an architecture for secure resource peering 

Yun Fu, Jeffrey Chase, Brent Chun, Stephen Schwab, Amin Vahdat 

October 2003 ACM SIGOPS Operating Systems Review , Proceedings of the nineteenth 
ACM symposium on Operating systems principles SOSP '03, volume 37 issue 
5 

Publisher: ACM Press 

Full text available: ^pj pdf(339.51 KB) Additional Information: full citation , abstract , references , citings , index terms 

This paper presents Sharp, a framework for secure distributed resource management in 
an Internet-scale computing infrastructure. The cornerstone of Sharp is a construct to 
represent cryptographically protected resource <it>claims</it>— promises or rights to 
control resources for designated time intervals— together with secure mechanisms to 
subdivide and delegate claims across a network of resource managers. These mechanisms 
enable flexible <it>resource peeri ... 

Keywords: peer-to-peer, resource allocation, resource peering 
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I. Cervesato, A. D. Jaggard, A. Scedrov, C. Walstad 

January 2005 Proceedings of the 2005 workshop on Issues in the theory of security 
WITS '05 

Publisher: ACM Press 

Full text available: ^S l pdf(228.62 KB) Additional Information: full citation, abstract , references 



Cross-realm authentication is a useful and interesting component of Kerberos aimed at 
enabling secure access to services astride organizational boundaries. We present a 
formalization of Kerberos 5 cross-realm authentication in MSR, a specification language 
based on multiset rewriting. We also adapt the Doiev-Yao intruder model to the cross- 
realm setting and prove an important property for a critical field in a cross-realm ticket. 
Finally, we document several failures of authentication and confid ... 

Protocols: The Eiqentrust algorithm for reputation management in P2P networks 
Sepandar D. Kamvar, Mario T. Schlosser, Hector Garcia-Molina 

May 2003 Proceedings of the 12th international conference on World Wide Web 
WWW '03 

Publisher: ACM Press 

Full text available: ^|jpdf(202,Q7 W) Additional Information: full citation, abstract, references , citings , index terms 

Peer-to-peer file-sharing networks are currently receiving much attention as a means of 
sharing and distributing information. However, as recent experience shows, the 
anonymous, open nature of these networks offers an almost ideal environment for the 
spread of self-replicating inauthentic files. We describe an algorithm to decrease the 
number of downloads of inauthentic files in a peer-to-peer file-sharing network that 
assigns each peer a unique global trust value, based on the peer's history of ... 

Keywords: distributed eigenvector computation, peer-to-peer, reputation 



11 Data and Content: MarconiNet supporting streaming media over localized wireless 
multicast 

Ashutosh Dutta, Subir Das, Wai Chen, Anthony McAuley, Henning Schulzrinne, Onur Altintas 
September 2002 Proceedings of the 2nd international workshop on Mobile commerce 
WMC '02 

Publisher: ACM Press 

Full text available: ^pdf(464.72 KB) Additional Information: full citation, abstract, references, cjlirm index terms 

Flexible multi-media streaming such as advertisment insertion, location based services, 
mobility and wireless access are vital components that make existing Internet Radio and 
TV networks more attractive for the roaming users. All of these applications also provide 
added value to telematics, and military usage including coordination, education, situation 
awareness, distributed simulation, battlefield communication and multi-player games. 
While content distribution over a wired network can be rea ... 

Keywords: join/leave latency, marconinet, multicast, streaming 

12 Heterogeneous computing environments: report on the ACM SIGOPS workshop on 
accommodating heterogeneity 

David Notkin, Norman Hutchinson, Jan Sanislo, Michael Schwartz 
February 1987 Communications of the ACM, Volume 30 Issue 2 
Publisher: ACM Press 

Full text available: ^jpdftl.02 MB) Additional Information: full citation , abstract , references , citings , index terms 

The ACM SIGOPS Workshop on Accommodating Heterogeneity was conducted in 
December 1985 in Eastbound, Wash., as a forum for an international group of fifty 
researchers to discuss the technical issues surrounding heterogeneous computing 
environments. 

13 UFO: a personal global file system based on user-level extensions to the operating 
system 

Albert D. Alexandrov, Maximilian Ibel, Klaus E. Schauser, Chris J. Scheiman 
August 1998 ACM Transactions on Computer Systems (TOCS), Volume 16 Issue 3 

Publisher: ACM Press 

Full text available: | Sj|po:f(251.25 KB) Additional Information: full citation, abstract references , cjiinfli index terms , review 
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In this article we show how to extend a wide range of functionality of standard operation 
systems completely at the user level. Our approach works by intercepting selected system 
calls at the user level, using tracing facilities such as the /proc file system provided by 
many Unix operating systems. The behavior of some intercepted system calls is then 
modified to implement new functionality. This approach does not require any relinking or 
recompilation of existing applications. In fact, the ... 

Keywords: file caching, global name space, proc file system, user-level operating system 
extensions 
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Implementing role based access control for federated information systems on the web I 
Kerry Taylor, James Murty 1 
January 2003 Proceedings of the Australasian information security workshop conference 
on ACSW frontiers 2003 - Volume 21 ACSW Frontiers 03 

Publisher: Australian Computer Society, Inc. 

Full text available: ^jpdf(g17 r 89 KB) Additional Information: full citation, abstract , references, citings, index terms 

There is rapidly increasing interest in Australia in on-line sharing of information stored in 
corporate databases, especially within and between staff of independent government 
agencies. Biological collections databases and population health GIS are good examples of 
the frequent situation where database custodians are looking for dynamic, distributed, 
heterogenous federated information system models for information sharing within loosely 
constituted communities. This paper describes a security m ... 

Keywords: RBAC, federated databases 



Role of local context in automatic deidentification of unqrammatical, fragmented text 
Tawanda Sibanda, Ozlem Uzuner 

June 2006 Proceedings of the main conference on Human Language Technology 
Conference of the North American Chapter of the Association of 
Computational Linguistics 

Publisher: Association for Computational Linguistics 

Full text available: pdf(281 .28 KB! Additional Information: full citation , abstract , references 



Deidentification of clinical records is a crucial step before these records can be distributed 
to non-hospital researchers. Most approaches to deidentification rely heavily on 
dictionaries and heuristic rules; these approaches fail to remove most personal health 
information (PHI) that cannot be found in dictionaries. They also can fail to remove PHI 
that is ambiguous between PHI and non-PHI. Named entity recognition (NER) technologies 
can be used for deidentification. Some of these technologies e ... 

IP micro-mobility protocols 
Andrew T. Campbell, Javier Gomez-Castellanos 

October 2000 ACM SIGMOBILE Mobile Computing and Communications Review, volume 4 

Issue 4 
Publisher: ACM Press 

Full text available: ^g| pdf(1,12 MB) Additional Information: full citation, abstract , citin gs , index terms 

The IETF Mobile IP Working Group is discussing a number of enhancements to the base 
protocol to reduce the latency, packet loss and signaling overhead experienced during 
handoff. In this article, we discuss a number of "micro-mobility protocols" that extend 
Mobile IP with fast handoff and paging capabilities. The aim of this article is not to provide 
an exhaustive survey of these protocols. Rather, we discuss the motivation behind micro- 
mobility, present common characteristics that a number of p ... 

17 The alchemy model: a model for homogeneous and heterogeneous distributed 
computing system 
s. J. Pratt 

April 1986 ACM SIGOPS Operating Systems Review, Volume 20 Issue 2 
Publisher: ACM Press 

Full text available: ^igj pdf(849.42 KB) Additional Information: full citation, abstract, references , citings , index terms 

The performance of any computing system is seriously affected by the performance of the 
resident operating system. Distributed computing systems are no different. There have 
been many successful attempts at harnessing the full potential offered by distributed 
computing's inherent flexibility. However by far the majority of these implementations 
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have been made on homogeneous configurations; the complexity implicit in connecting a 
number of heterogeneous sub-systems into a single, unified distribu ... 

Separating Abstractions from Resources in a Tactical Storage System 
Douglas Thain, Sander Klous, Justin Wozniak, Paul Brenner, Aaron Striegel, Jesus Izaguirre 
November 2005 Proceedings of the 2005 ACM/IEEE conference on Supercomputing SC 
'05 

Publisher: IEEE Computer Society 

Full text available: pdf(401 .40 KB) Additional Information: full citation , abstract , index terms 

Sharing data and storage space in a distributed system remains a difficult task for 
ordinary users, who are constrained to the fixed abstractions and resources provided by 
administrators. To remedy this situation, we introduce the concept of a tactical storage 
system (TSS) that separates storage abstractions from storage resources, leaving users 
free to create, reconfigure, and destroy abstractions as their needs change. In this paper, 
we describe how a TSS can provide a variety of filesystem an ... 

Massive High-Performance Global File Systems for Grid computing 
Phil Andrews, Patricia Kovatch, Christopher Jordan 

November 2005 Proceedings of the 2005 ACM/IEEE conference on Supercomputing SC 
•05 

Publisher: IEEE Computer Society 

Full text available: ^gj pdf(493.23 KB) Additional Information : full citation , abstract , index terms 

In this paper we describe the evolution of Global File Systems from the concept of a few 
years ago, to a first demonstration using hardware Fibre Channel frame encoding into IP 
packets, to a native GFS, to a full prototype demonstration, and finally to a production 
implementation. The surprisingly excellent performance of the Global File Systems over 
standard TCP/IP Wide Area Networks has made them a viable candidate for the support of 
Grid Supercomputing. The implementation designs and performa ... 

Identity Boxing: A New Technigue for Consistent Global Identity 
Douglas Thain 

November 2005 Proceedings of the 2005 ACM/IEEE conference on Supercomputing SC 
•05 

Publisher: IEEE Computer Society 

Full text available: <j lodf(393.19 KB) Additional Information: full citation, abstract, index terms 



Today, users of the grid may easily authenticate themselves to computing resources 
around the world using a public key security infrastructure. However, users are forced to 
employ a patchwork of local identities, each assigned by a different local authority. This 
forces each grid system to provide a mapping from global to local identities, creating a 
significant administrative burden and inhibiting many possibilities of data sharing. To 
remedy this, we introduce the technique of identity boxing. ... 
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21 Session 1 : On fairness in simulatabilitv-based cryptographic systems 
Michael Backes, Dennis Hofheinz, Jorn Muller-Quade, Dominique Unruh 
November 2005 Proceedings of the 2005 ACM workshop on Formal methods in security 
engineering FMSE '05 

Publisher: ACM Press 
Full text available: 



Additional Information: full citation , abstract , references, index terms 

Simulatability constitutes the cryptographic notion of a secure refinement and has 
asserted its position as one of the fundamental concepts of modern cryptography. 
Although simulatability carefully captures that a distributed protocol does not behave any 
worse than an ideal specification, it however does not capture any form of liveness 
guarantees, i.e., that something good eventually happens in the protocol. We show how 
one can extend the notion of simulatability to comprise liveness guarantees ... 



Keywords: cryptographic protocols, fairness, scheduling, simulatability 



22 Multi-agent systems and social behavior: A user-centric anonymous authorisation 
framework in e-commerce environment 

Richard Au, Harikrishna Vasanta, Kim-Kwang Raymond Choo, Mark Looi 
March 2004 Proceedings of the 6th international conference on Electronic commerce 
ICEC '04 

Publisher: ACM Press 

Full text available: ^pjj pdf(291 .06 KB) Additional Information: full citation, abstract, references , citings 

A novel user-centric authorisation framework suitable for e-commerce in an open 
environment is proposed. The credential-based approach allows a user to gain access 
rights anonymously from various service providers who may not have pre-existing 
relationships. Trust establishment is achieved by making use of referrals from external 
third parties in the form of Anonymous Attribute Certificates. The concepts of One-task 
Authorisation Key and Binding Signature are proposed to fac ... 

23 A grid-enabled MPI: message passing in heterogeneous distributed computing 
systems ' 
Ian Foster, Nicholas T. Karonis 

November 1998 Proceedings of the 1998 ACM/IEEE conference on Supercomputing 
(CDROM) Supercomputing '98 

Publisher: IEEE Computer Society 

Full text available: g| html(52.16 KB) Additional Information: full citation, abstract, references, citings 

Application development for high-performance distributed computing systems, or 
computational grids as they are sometimes called, requires x 1 grid-enabled" tools that hide 
mundane aspects of the heterogeneous grid environment without compromising 
performance. As part of an investigation of these issues, we have developed MPICH-G, a 
grid-enabled implementation of the Message Passing Interface (MPI) that allows a user to 
run MPI programs across multiple computers at different sites using the same co ... 
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Password management mnemonics, and mother's maiden names: Passpet: 
^ convenient password management and phishinq protection 
>r Ka-Ping Yee, Kragen Sitaker 

July 2006 Proceedings of the second symposium on Usable privacy and security 

SOUPS 06 
Publisher: ACM Press 

Full text available: ^gj pdf(479.35 KB) Additional Information: full citation , abstract , references , index terms 

We describe Passpet, a tool that improves both the convenience and security of website 
logins through a combination of techniques. Password hashing helps users manage 
multiple accounts by turning a single memorized password into a different password for 
each account. User-assigned site labels (petnames) help users securely identify sites in 
the face of determined attempts at impersonation (phishing). Password-strengthening 
measures defend against dictionary attacks. Customizing the user interfac ... 
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Cryptographic security Techniques for wireless networks 
Danai Patiyoot, S. J. Shepherd 

April 1999 ACM SIGOPS Operating Systems Review, volume 33 Issue 2 
Publisher: ACM Press 

Full text available: ^miAZJm Additional Information: full citation, extract , index terms 

This paper deals with security techniques for wireless Networks. The work presented is 
based on a review of literature regarding current and future wireless security networks 
systems. The aspects discussed in this paper included the choices of cryptographic 
algorithms such as protocols for key management and authentication. Various conclusions 
are drawn from existing security networks and proposed in new wireless ATM network 
security. Also a proposal for future research into security techniques ... 

Keywords: cryptographic, security, wireless 



Special issue on independent components analysis: ICA for watermarking digital 
images 

Stephane Bounkong, Boremi Toch, David Saad, David Lowe 

December 2003 The Journal of Machine Learning Research, volume 4 

Publisher: MIT Press 

Full text available: ^jpdf(5$4JQ K3 ) Additional Information: full citation, abstract, citin gs, index terms 

We present a domain-independent ICA-based approach to watermarking. This approach 
can be used on images, music or video to embed either a robust or fragile watermark.In 
the case of robust watermarking, the method shows high information rate and robustness 
against malicious and non-malicious attacks, while keeping a low induced distortion. The 
fragile watermarking scheme, on the other hand, shows high sensitivity to tampering 
attempts while keeping the requirement for high information rate and lo ... 

Probabilistic quorum protocols for biometrical user authentication in OLTP 
V. K. Murthy 

January 1996 ACM SIGSAC Review, Volume 14 Issue 1 
Publisher: ACM Press 

Fuil text available: ^| pdf(399,$9 KB) Additional Information: full citation, abstract, references, citings 

A statistical zero-knowledge authentication scheme is described for security control in on- 
line database transaction processing systems (OLTP). This scheme uses probabilistic 
quorum protocols to validate users using their biometrical characteristics (such as speech, 
handwriting and keyboard characteristics). This authentication scheme can be 
implemented using the present-day smart card technology. 

Papers: Cellular IP: a new approach to Internet host mobility 
Andras G. Valko 

January 1999 ACM SIGCOMM Computer Communication Review, volume 29 Issue 1 
Publisher: ACM Press 
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This paper describes a new approach to Internet host mobility. We argue that by 
separating local and wide area mobility, the performance of existing mobile host protocols 
(e.g. Mobile IP) can be significantly improved. We propose Cellular IP, a new lightweight 
and robust protocol that is optimized to support local mobility but efficiently interworks 
with Mobile IP to provide wide area mobility support. Cellular IP shows great benefit in 
comparison to existing host mobility proposals for environm ... 

29 Combinatorial mobile IP: a new efficient mobility management using minimized paging 
and local registration in mobile IP environments 
Taehwan Choi, Laeyoung Kim, Jeongeun Nah, Jooseok Song 
May 2004 wireless Networks, Volume 10 issue 3 
Publisher: Kluwer Academic Publishers 
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Combinatorial Mobile IP, a new mobility management scheme for Mobile IP, is proposed 
and analyzed. We present how to adopt mobility management schemes on cellular 
networks and adapt them in Mobile IP without disrupting the nature of the Internet. We 
apply widely used mobility management schemes such as hierarchical architecture and 
paging in cellular networks to Mobile IP. We restrict paging to the area that has to be 
paged using local registrations. In this way, we show that the total signaling ... 

Keywords: micro- mobility protocol, mobile IP, mobility management, random walk model 
on a connected graph 
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Parsing techniques based on rules defining grammaticality are difficult to use with 
authentic inputs, which are often grammatically messy. Instead, the APRIL system seeks 
a labelled tree structure which maximizes a numerical measure of conformity to statistical 
norms derived from a sample of parsed text. No distinction between legal and illegal trees 
arises: any labelled tree has a value. Because the search space is large and has an 
irregular geometry, APRIL seeks the best tree using simulated a ... 

Separating key management from file system security 

David Mazieres, Michael Kaminsky, M. Frans Kaashoek, Emmett Witchel 

December 1999 ACM SIGOPS Operating Systems Review , Proceedings of the 

seventeenth ACM symposium on Operating systems principles SOSP '99, 

Volume 33 Issue 5 
Publisher: ACM Press 

Full text available: ^||pdf(1.77 MB) Additional Information: full citation , abstract , references, citings, index terms 



No secure network file system has ever grown to span the Internet. Existing systems all 
lack adequate key management for security at a global scale. Given the diversity of the 
Internet, any particular mechanism a file system employs to manage keys will fail to 
support many types of use.We propose separating key management from file system 
security, letting the world share a single global file system no matter how individuals 
manage keys. We present SFS, a secure file system that avoids internal ... 

Tuple centres for the coordination of Internet agents 
Andrea Omicini, Franco Zambonelli 

February 1999 Proceedings of the 1999 ACM symposium on Applied computing SAC '99 

Publisher: ACM Press 
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One of the greatest obstacles to wide-spread deployment of wireless mobile systems is 
security. Cryptographically strong protocols and algorithms are required to enable secure 
communication over links that are easy to monitor and control by an attacker. While good 
cryptographic algorithms exist, it is difficult to design protocols that are immune to 
malicious attack. Good analysis techniques are lacking. This paper presents extensions to 
a technique for specifying and analyzing nonmonotonic ... 

Giggle: a framework for constructing scalable replica location services 
Ann Chervenak, Ewa Deelman, Ian Foster, Leanne Guy, Wolfgang Hoschek, Adriana Iamnitchi, 
Carl Kesselman, Peter Kunszt, Matei Ripeanu, Bob Schwartzkopf, Heinz Stockinger, Kurt 
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In wide area computing systems, it is often desirable to create remote read-only copies 
(replicas) of files. Replication can be used to reduce access latency, improve data locality, 
and/or increase robustness, scalability and performance for distributed applications. We 
define a replica location service (RLS) as a system that maintains and provides access to 
information about the physical locations of copies. An RLS typically functions as one 
component of a data grid architecture. This paper mak ... 

SafeBots: a paradigm for software security controls 
Robert Filman, Ted Linden 

September 1996 Proceedings of the 1996 workshop on New security paradigms NSPW 
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Publisher: ACM Press 
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Mobile computing is a major area of current research. A variety of wirelessly networked 
mobile devices now make it possible for a physically untethered computer to function in a 
fully networked manner. Recent research has focussed on providing the mobile user a 
seamless environment of wired and wireless networks. One of the major hurdles in 
providing such a seamless environment is that wireless media are inherently less 
secure. In this paper, we propose a security scheme for wire! ... 
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We propose a method for engineering security protocols that are aware of timing aspects. 
We study a simplified version of the well-known Needham Schroeder protocol and the 
complete Yahalom protocol. Timing information allows us to study of different attack 
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scenarios. We illustrate the attacks by model checking the protocol using Uppaal. 
We also present new challenges and threats that arise when considering time. 
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Most authentication protocols for distributed systems achieve identification and key 
distributions on the belief that the use of a uncertified key, i.e. the key whose freshness 
and authenticity cannot be immediately verified by its receiving principal while being 
received, should be avoided during the mid-way of an authentication process. In this 
paper we claim that using a uncertified key prudently can give performance advantages 
and not necessarily reduces the security of authentication protoc ... 
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This work discusses the evolution of W-LANs from their current status of wireless 
termination of LAN services to a possible global infrastructure where the access networks 
become open to multiple operators and a vehicle of a win-win scenario, where both users 
and operators benefit from the new network architecture. The idea of Open Access 
Networks (OANs) can go beyond wireless HotSpots and be generalized to a generic shared 
access infrastructure that fosters service operators competition and dra ... 

Keywords: business models, open access networks, resource sharing, 
telecommunications architecture, user-operator interaction, wireless LANs 
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